Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1rO0Nu-buGEcC0rd49Qv_2QB2Us.roa
File: 1rO0Nu-buGEcC0rd49Qv_2QB2Us.roa (raw, json)
Hash identifier: DnDt5et7vhU2EaqgFMr9x3cOJ7b3IHbPdkVBU6c20Cw=
Subject key identifier: D6:B3:B4:36:EF:9B:B8:61:1C:0B:4A:DD:E3:D4:2F:FF:64:01:D9:4B
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0187F713D65643A3221AD5F2DF34FFA004C8
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1rO0Nu-buGEcC0rd49Qv_2QB2Us.roa
Signing time: Sun 07 May 2023 16:38:05 +0000
ROA not before: Sun 07 May 2023 16:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.65.114.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 03:38:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f7:13:d6:56:43:a3:22:1a:d5:f2:df:34:ff:a0:04:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 7 16:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6b3b436ef9bb8611c0b4adde3d42fff6401d94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fc:f9:b8:b5:4c:a7:1a:e9:14:1c:30:46:7e:
9c:b3:49:68:f4:ca:e0:32:26:34:15:e2:6a:dd:e9:
b5:ec:23:8a:03:f8:73:6f:62:3f:bf:41:78:86:a7:
1c:67:25:bc:e2:c2:64:fb:2f:86:4c:ce:dd:da:8d:
91:02:47:af:31:4b:d9:de:74:43:65:a6:6c:55:50:
7f:b5:28:bc:ac:9d:4c:32:ca:ac:b3:8b:49:57:73:
9d:d5:93:7c:72:96:7c:d0:70:43:66:b4:4f:ea:2b:
2e:29:0c:8e:f4:1d:75:53:97:49:90:90:d8:6a:25:
06:50:37:82:8d:27:cb:ce:45:1d:8c:54:57:7e:92:
79:b9:2b:72:60:1d:7e:e7:e7:53:9c:f8:c1:c9:7b:
1e:7b:07:ac:55:19:51:95:ed:77:35:09:45:e0:57:
db:fe:ed:21:c6:2f:e2:3f:f6:fc:65:7a:73:4a:70:
8a:60:df:12:48:98:a1:cf:af:94:4b:ea:64:a3:12:
ca:02:e7:30:56:77:1c:1a:5a:85:0c:fe:fe:ec:12:
0d:d5:c0:86:11:82:5a:d9:21:6e:02:0d:e7:2e:2f:
e3:83:34:ec:a7:a9:bd:ee:79:d4:b2:ae:a8:fb:97:
41:3c:2a:0f:60:bb:8b:53:c9:5b:49:be:c4:6c:db:
fe:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B3:B4:36:EF:9B:B8:61:1C:0B:4A:DD:E3:D4:2F:FF:64:01:D9:4B
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1rO0Nu-buGEcC0rd49Qv_2QB2Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.114.0/23
Signature Algorithm: sha256WithRSAEncryption
46:e0:01:09:60:77:c2:21:82:0d:8d:a8:4a:90:57:d6:ae:81:
99:a2:ca:96:2b:56:83:f1:b3:0f:4e:60:67:7f:11:e4:d6:d9:
6e:2a:58:71:c5:d2:5d:02:d7:21:5a:07:cd:39:7d:7b:3a:00:
56:4c:49:e9:dc:f0:6d:c8:3a:02:e6:45:b2:52:eb:b3:79:6c:
b8:b7:93:f2:e4:73:24:11:23:f2:9c:78:dc:21:ab:cd:25:a9:
2a:4d:f2:c1:48:6d:09:c0:a4:ac:03:1a:c8:0b:a0:6f:e6:52:
f8:da:9f:16:46:74:28:1b:a5:ab:ad:17:c3:ff:4c:a8:7e:b2:
c2:2f:d6:e6:b6:13:1e:45:c8:2e:f1:be:c0:74:e3:a7:9d:6c:
35:2a:1f:db:55:be:e5:bc:4a:53:b2:1b:a7:78:75:5a:04:34:
b6:1d:66:6c:d0:c0:19:d5:44:f8:f4:94:66:64:50:a8:fd:c8:
d8:9d:74:45:0a:58:fd:7b:13:0c:70:14:e0:e1:19:b9:92:cb:
0e:62:43:3f:94:97:c3:9a:26:76:de:95:28:e6:1f:33:b2:a1:
0e:82:42:71:21:4a:8b:76:31:81:e8:88:c1:0f:6c:c0:34:6a:
16:c2:0f:d1:21:9b:00:a3:09:93:dc:89:9c:33:7f:15:8d:18:
39:9f:9d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org